" hipaa Archives - HIPAA News, Web & Email Security Tips & News - Plus More | LuxSci
LuxSci

Posts Tagged ‘hipaa’

Email Archival is Required by HIPAA

Tuesday, February 6th, 2018

Customers constantly inquire if Email Archival services are really required by HIPAA regulations.

There is a great deal of confusion and uncertainty here because:

  1. HIPAA by its nature is vague, listing many things that you need to do, but not saying how.  This makes things flexible and workable, if ambiguous.
  2. Email Archival generally adds cost to any email solution — and everyone prefers to avoid unnecessary costs.
  3. Most want to do the minimum needed for compliance due to time and budgetary constraints.

Email Archival is Required by HIPAA

In our opinion, Email Archival is an implicit requirement of HIPAA for all organizations that utilize email for the sending or receipt of ePHI should invest in.  In the next section, we’ll review why.

Read the rest of this post »

SecureForm Dropbox Integration Now Available

Friday, February 2nd, 2018

LuxSci SecureForm now supports sending your web and PDF form data to your Dropbox account.  Simply choose “Dropbox” from the available integrations, enter your Dropbox App token (follow our simple help guide to generate that), and specify what data formats should be uploaded.

  • Send data as: text, HTML, CSV, XML, custom text/html template, PDF template, etc.
  • Files can be uploaded as dated ZIP archives or dated individual files.
  • End-user files uploaded to your forms are also sent to Dropbox

HIPAA Compliance?  As long as you have a HIPAA-compliant Dropbox account and configure your Dropbox appropriately, you can use SecureForm to send your form data to Dropbox in a HIPAA-compliant manner.

Try it out!

Case Study: Securely Email Medical Laboratory Results to Patients

Thursday, February 1st, 2018

We count many medical laboratories among our customers.  They process lab tests for doctors and send the results to the patients via email.

Medical laboratories, while sometimes not HIPAA covered entities themselves, are Business Associates with Hospitals and doctors who are required to abide by HIPAA.  By the “transitive” nature of the HIPAA privacy laws, such Business Associates must take pains to abide by HIPAA security and privacy standards, protecting patient data, and ensuring confidentiality.

Medical labs use large scale secure email sending

In order to send patients their results via email, these labs must use a HIPAA-complaint system that can send email to anyone with an email address.

This post describes how one large medical lab uses LuxSci’s SecureLine to safely deliver lab results to 1000s people every day.

Read the rest of this post »

Cyber Espionage Infiltrates American Small Business

Tuesday, January 30th, 2018

The last thing an architect could imagine is that his company’s proposal for a new commercial building site along a stunning San Francisco Bay view would lose to a competitor with a similar design and infrastructure, a lower bid, and a leaner delivery schedule. It happened. And cyber-espionage was the culprit.

New technology spans the globe as small businesses find themselves victims to espionage as someone steals their sales pipelines, customer lists, corporate secrets, and corridors to their Fortune 1000 clients without their knowledge. It was Robert Mueller, former head of the FBI, who stated in 2012 that “there are only two types of companies: those that have been hacked and those that will be.” A well-known attorney updated that comment recently when he warned his colleagues that “You are a company that has been hacked or a company that doesn’t know you were hacked.” This is a reality check for all business owners.

Read the rest of this post »

How iDTech Leverages SecureForm to Scale Their Organization

Saturday, January 20th, 2018

Interview with Kristi Murnin: Compliance and Risk Assessment Associate at iDTech.

January, 2018.

See iDTech online at https://www.idtech.com

Read a full transcript of this interview.

17 Questions To Ask Yourself Before You Send A HIPAA-Compliant Marketing Email

Thursday, January 18th, 2018

You’ve just been told that you need to rethink your entire email marketing system. Your attorney and compliance specialist are both telling that you need to implement HIPAA-compliant email marketing.

Your starting point is to break down that goal into two components: business goals and HIPAA compliance. Your email marketing has to achieve your business goals like providing fast customer service and generating more appointments. Next, you need to put HIPAA compliant systems and processes in place.

Use these 17 questions to review your email marketing aligns with your business goals and HIPPA.

 

Read the rest of this post »

Ask Erik: Is misaddressed email a HIPAA breach?

Friday, December 8th, 2017

Read the rest of this post »

Understanding Blockchains – Part 4: Exploiting blockchain-based solutions

Wednesday, December 6th, 2017

We conclude our four-part series (see the earlier posts here, here, and here) with a survey of how blockchains are (or could be) used in different industries, but especially in the medical and healthcare sectors.

In the previous posts, we provided a step-by-step introduction to blockchains – showing how a fully distributed ledger can be maintained in a consistent state by a large group of unaffiliated peers, mutually distrustful and potentially malicious, and who may not always be responsive. Distributed ledger (or database) technology is not new, but the blockchain as used by Bitcoin offered the first practical solution to solve most of the problems that thwarted researchers in the past.  It solved the problem of scale (the number of nodes that have to maintain the ledger), the problem of trust (between pseudonymous peers), the problem of mutability (preventing retrospective changes to the ledger), the problem of centralization (where an attack on a central database can lead to massive data loss or denial of service), and several others. Bitcoin’s successor, Ethereum, as described in our previous post, added a whole new twist to the simple ledger as a repository of immutable records. Records can now contain code which can run business rules incorruptibly and effect changes in the system.

Blockchain is not just for cryptocurrency

That the success of Bitcoin and Ethereum as a showcase of blockchain technology should have captured the attention of other industries is no surprise. After all, some of the operational issues that such diverse industries as banking, transportation, education and pharmaceuticals face appear to be partly mitigated by a blockchain-based solution. For instance, many of these industries suffer from poor or inaccurate record keeping, which adds to costs, inconvenience and fraud. A blockchain-based solution appears, at least superficially, to address some of these inefficiencies. For example, education records can be maintained permanently on a blockchain (rather than in easily lost or alterable paper records); a drug shipment can be tagged on the blockchain during each stage of its manufacture through transportation between various intermediaries to the ultimate retailer, preventing counterfeiting.

Read the rest of this post »

HIPAA-compliance Seals Build Trust

Thursday, November 9th, 2017

Read the rest of this post »

Trust Seals & Their Impact on Sales: Things You Should Know

Wednesday, November 8th, 2017

With visually appealing trust seals on your website, you can expect to get more leads and improve sales.

Have you ever noticed a logo on an e-commerce site that is screaming to tell that their payment system will not compromise your credit card information? Well, this is an example of a variety of trust-building tools called trust seals. The trust seals appear in a site in various forms such as a logo, icon or badge. They may be placed in the header, near a form, and in the footer or navigation menu.

Trust seals increase sales

Some common examples of trust seals are Luxsci’s HIPAA certification seal, Better Business Bureau (BBB), McAfee, TrustedShops, SiteLock, GeoTrust, Thawte, Comodo, PayPal, Visa, Google, Verisign, TRUSTe seals and Shopify.

A graduation certificate from MIT or Oxford will most probably land you up on a high-paying job. Right? (But then after, your performance will decide how long the employer will retain you.) This is similar to what trust seals do to your business.

Read the rest of this post »